Description

Years of Experience

•             6+ years of relevant experience in CyberArk Implementation - Design & Architecture.

General Description

•             Creating and implementing strategies for managing privileged access, designing solutions, and ensuring the secure storage and retrieval of sensitive credentials.

•             Demonstrating in-depth knowledge of CyberArk products, including the Enterprise Password Vault, Privileged Session Manager, and other related tools.

•             Overseeing the installation, configuration, and integration of CyberArk components to safeguard critical systems and data.

•             Engage with different stakeholders via workshops, etc. for all the design level discussions and prepare design documents.

•             Developing and enforcing security policies, access controls, and privileged access management procedures to mitigate risks.

•             Identifying vulnerabilities and potential threats, and implementing measures to protect against unauthorized access.

•             Maintaining detailed records, reports, and documentation of CyberArk configurations and activities.

•             Ensuring that CyberArk solutions are up-to-date and providing support for system upgrades and maintenance.

•             Interact with different teams to gather the required data for integration/ on-boarding of target systems /devices.

•             Resolving technical issues and providing expert guidance to address security challenges.

Skills / Technical Requirements

•             Expertise in providing PAM solutions using CyberArk.

•             Should have experience on CyberArk from 11.xx onwards

•             Design deploy & support high-performance, high-availability PAM environment with any number of target end points, creating workflows, custom connectors, policies.

•             Perform enhancement in CyberArk Core PAS

•             On-board target systems onto CyberArk Core PAS.

•             Support migration from Centrify to CyberArk Core PAS.

•             Integrate Legacy IDM instances with CyberArk to manage human accounts.

•             Support Redhat migration

•             Migrate CyberArk shared and pooled accounts.

•             Create named tiered accounts model and onboard name tiered accounts in CyberArk and assign them to correct IDM User Groups

•             Work on Migration model - Pooled Accounts to Named tiered account.

•             Perform Centrify Access Data Analysis to yield the current access data model and merge into the new Tiered Access Model.

•             Should be capable to deploy/install/configure CyberArk components Vault, CPM, PVWA, PSM, PSMP and AIM as per the client requirements.

•             Hands-on experience or knowledge on Configuring PTA, EPM.

•             Integrating various platforms with CyberArk such as Windows, UNIX, Databases and network devices, SSH Keys, SAP etc.

•             Creating and managing Safes, platforms and owners.

•             Should have knowledge on Password upload utility and PACLI.

•             Experience on integrating CyberArk solution with LDAP, SIEM SNMP and other identity management systems.

•             Strong scripting skills, often using languages like PowerShell, Python, or Shell scripting, to automate tasks and customize CyberArk solutions.

•             Knowledge of regulatory requirements and industry standards related to privileged access management, such as NIST, CIS, and GDPR.

•             Experience with security monitoring tools and integrating CyberArk with Security Information and Event Management (SIEM) systems.

Soft Skills

•             Excellent Verbal and written communication skills in English.

•             Ability to present solutions to clients remotely and in person if needed.

•             Good documentation skills that will enable creation of design documents for the technical solutions proposed.

•             Excellent problem-solving skills.

•             Good collaboration skills in working with virtual and distributed teams.

Certifications

•             Possession of relevant CyberArk certifications such as CyberArk Certified Delivery Engineer (CDE) or CyberArk Certified Trustee (CTP) can be a significant advantage.

Educational Qualifications

•             University degree in IT or/and IT Security
 

Education

Any Graduate